Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through <= 9.6.4.
Credits
João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program
